﻿using System.Collections.Generic;
using System.Web.Http;
using System.Web.Http.Controllers;

namespace SalesSys.Site.Controllers.Api
{
    [Authorize]
    public class ValuesController : ApiController
    {
        
        // GET api/values
        public IEnumerable<string> Get()
        {
         //System.Web.HttpContext.Current
            base.ActionContext.Response.Headers.Add("Access-Control-Allow-Origin", "*");
            return new string[] { "value1", "value2" };
        }

        // GET api/values/5
        public string Get(int id)
        {
            return "value";
        }

        // POST api/values
        public void Post([FromBody]string value)
        {
        }

        // PUT api/values/5
        public void Put(int id, [FromBody]string value)
        {
        }

        // DELETE api/values/5
        public void Delete(int id)
        {
        }
    }

    

    public class AuthRole : AuthorizeAttribute
    {
        protected override bool IsAuthorized(HttpActionContext actionContext)
        {
            return base.IsAuthorized(actionContext);
        }
    }
}
